RSS Feed
Latest Updates
Jun
23
Kernel & Glibc Stack Guard security vulnerability
Posted by Melvin B on 23 June 2017 02:21 PM

A new kernel & glibc Stack Guard security vulnerability (CVE-2017-1000364) has been reported by RedHat.

Information :
A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system.

You can refer to the following link for more details:

****
https://access.redhat.com/security/cve/cve-2017-1000364
****

>>How to find out whether your server is vulnerable or not?

1. Download the latest vulnerability detection script from https://access.redhat.com/security/vulnerabilities/stackguard from the Diagnose tab
2. run it on your server.

>>How to fix the Vulnerability?

Debian/Ubuntu

Update and upgrade your packages using apt-get.
#apt-get update && sudo apt-get dist-upgrade

You'll need to reboot your server to apply the changes.
#reboot

CentOS

Using either of the two methods mentioned below:-

1. You can initiate a full yum update using the below command:

yum update

OR

2. just update the kernel and glibc packages:

yum update "kernel*"
yum update "glibc"

You'll need to reboot your server to apply the changes.
#reboot

If you face any issues in patching your server, please feel free to contact our support helpdesk in case you have any queries.


Read more »



Jun
23
SSH Access Disabled on all Linux Servers
Posted by Melvin B on 23 June 2017 09:50 AM

Update [27-06-2017, 13:00]

The service has been restarted on all the servers.

SSH access has been re-enabled in all our servers.

Please feel free to contact our support helpdesk in case you have any queries.

----------------------------------------------------------------------------------------------------------------------------------------

Update [24-06-2017, 16:30 IST]

The Patch has been applied on all the servers.

Nest step is to restart the services rather than rebooting servers to minimize the total downtime per server.

This will be done as batches.

Please watch this forum post for further updates.

-----------------------------------------------------------------------------------------------------------------------------------------

Update [23-06-2017, 12:20 IST]

We have enabled the "crontab" on all the Linux Shared servers.

The server will not be accessible via "SFTP". Please use "FTP" on SItelock and Codeguard configuration, since SFTP will not be accepted on the server.

We are working on patching the servers with the latest update and re-enable ssh access.

Please watch this forum post for further updates.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------

With immediate effect, we have disabled "SSH access" on all Linux servers due to the recent Linux vulnerability CVE-2017-1000364.

We have also disabled "crontab" on all shared servers as a security enhancement.

You can refer the following link for more details:

***

https://access.redhat.com/security/cve/cve-2017-1000364

***

We will be patching the servers with the latest update and re-enable SSH access on the servers. The servers will be rebooted post the server update.

Meanwhile, we recommend you to use cPanel and FTP to manage your files.

Please feel free to contact our support helpdesk in case you have any queries.


Read more »



Apr
17
Scheduled maintenance on some of our hosting servers
Posted by Sivaranjani P on 17 April 2017 03:17 PM

Dear Customer,

Please be advised that the following servers will be undergoing a scheduled maintenance as per the schedule and reason mentioned below.

Affected Servers:
mdin-pp-mysql1.webhostbox.net
sdin-pp-mysql1.webhostbox.net
bhin-pp-mysql1.webhostbox.net
bhin-pp-mssql1.webhostbox.net
sdin-pp-mssql1.webhostbox.net
mdin-pp-mssql1.webhostbox.net
sdin-pp-wb1.webhostbox.net
mdin-pp-wb1.webhostbox.net
mdin-pp-wb2.webhostbox.net
bhin-pp-wb3.webhostbox.net
bhin-pp-wb2.webhostbox.net
md-in-38.webhostbox.net

Reason: Power maintenance in the Data Center

Maintenance Window:

Day and Date: Tuesday, 18th April 2017
Start Time: 20:30 IST
Duration: 3 hours

Affected Services:

All services hosted on the aforementioned servers will be down. Also, if your website uses one of the above-mentioned MySQL/MSSQL servers, your site/database will be inaccessible during the maintenance.

Please feel free to contact our support helpdesk in case you have any queries.


Read more »



Mar
27
cPanel X3 Theme Deprecation
Posted by Joyson L on 27 March 2017 05:46 PM

 The cPanel has deprecated the x3 theme and new updates won’t be available for the same. You can read more about the deprecation of the x3 theme from the following cPanel blogs :-

 
As a result, we will be changing the theme of all accounts hosted on our servers to Paper Lantern. In case you prefer using the x3 theme, Paper Lantern has a Retro style feature which gives you the same appearance as x3.
 
Points to be noted :
  • If you are still using x3 as the default theme for your accounts, please switch over to Paper Lantern before 15th of April, 2017. However if the server in which your account is hosted is scheduled for any cPanel upgrades (before 15th April, 2017) then it will automatically change the theme to Paper Lantern. So, it would be advisable to make this switch at the earliest.
  • Once the theme is changed to Paper Lantern, it will not be possible to revert back to x3.
  • All customizations related to x3 theme would be lost and you need to perform the same customizations after changing the theme to Paper Lantern.
Steps to change the theme in reseller WHM panel :
  • Login to reseller WHM panel
  • Select ‘Edit a package’
  • Change the theme of the package to paper_lantern (This will update the theme for all associated accounts with the package)
Steps to change the theme in cPanel :
  • Login to your cPanel
  • Select ‘Change Style’ option
  • Change it to Paper Lantern theme
Note : If you are already using Paper lantern then you are not affected due to this. Please ignore this message.
 
If you need any further clarifications, please contact our support team.
 

Read more »



Mar
7
Emergency maintenance on our Linux hosting servers
Posted by Meghana L on 07 March 2017 04:19 PM

Maintenance Notice:

Please be advised that the following Linux hosting servers will be undergoing an emergency maintenance as per the schedule and for the reason mentioned below.

Reason :

Upgrading CPanel from 11.54 to 11.56.

 

Maintenance Window :

=====================================================================================

Affected server:

cp-13.webhostbox.net

cp-23.webhostbox.net

bh-18.webhostbox.net

cp-29.webhostbox.net

cp-11.webhostbox.net

md-71.webhostbox.net

cp-15.webhostbox.net

bh-7.webhostbox.net

md-hk-3.webhostbox.net

bh-11.webhostbox.net

Date and Time : 

Tuesday, Mar 07 2017, 21:00 IST

Duration:

2 hours

Affected Services:

No major impact, brief service restart

 

Please feel free to contact our support team in case you have any queries.


Read more »